WordPress Vulnerabilities Database

WordPress <= 3.4.1 - XSS and BYPASS

Product

WordPress

Description

Because of these vulnerabilities, authenticated users can perform cross-site scripting attacks by leveraging the Administrator or Editor role and composing crafted text and bypass intended access restrictions.